Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Container scanning does not support distroless #1093

Open
FraBle opened this issue Nov 8, 2022 · 3 comments
Open

Container scanning does not support distroless #1093

FraBle opened this issue Nov 8, 2022 · 3 comments

Comments

@FraBle
Copy link

FraBle commented Nov 8, 2022

Example upstream image: gcr.io/distroless/nodejs:16

Error observed in output from fossa-cli:

$ fossa container analyze ***.dkr.ecr.us-west-2.amazonaws.com/<folder>/<image>:latest
[ INFO] Inferred registry source: https://<REDACTED>:<REDACTED>@***.dkr.ecr.us-west-2.amazonaws.com/<REDACTED>/<REDACTED>:latest
[ INFO] [ 5 Waiting / 1 Running / 0 Completed ]
[ INFO] [ 3 Waiting / 2 Running / 1 Completed ]
[ INFO] Gzip extracted & downloaded: <REDACTED>.tar
[ INFO] [ 2 Waiting / 2 Running / 2 Completed ]
[ INFO] Gzip extracted & downloaded: <REDACTED>.tar
[ INFO] [ 1 Waiting / 2 Running / 3 Completed ]
[ INFO] Gzip extracted & downloaded: <REDACTED>.tar
[ INFO] [ 0 Waiting / 2 Running / 4 Completed ]
[ INFO] Downloaded: <REDACTED>[12](https://github.com/<REDACTED>/<REDACTED>/actions/runs/<REDACTED>/jobs/<REDACTED>#step:8:13)<REDACTED>.json
[ INFO] [ 0 Waiting / 1 Running / 5 Completed ]
[ INFO] Gzip extracted & downloaded: <REDACTED>[14](https://github.com/<REDACTED>/<REDACTED>/actions/runs/<REDACTED>/jobs/5683842951#step:8:15)<REDACTED>.tar
[ INFO] Analyzing exported docker archive: /tmp/fossa-container-registry-tmp-<REDACTED>[17](https://github.com/<REDACTED>/<REDACTED>/actions/runs/<REDACTED>/jobs/5683842951#step:8:18)<REDACTED>/image.tar
[ INFO] Analyzing Base Layer
Error:  ----------
  An issue occurred

  >>> Relevant errors

    Error

      Error reading file etc/os-release:
          user error (ReadContentBS: Could not find etc/os-release in /tmp/fossa-container-registry-tmp-<REDACTED>/image.tar)

      Traceback:
        - Parsing file 'etc/os-release'
        - Retrieving Os Information
        - Analyzing via registry

    Error

      Error reading file etc/system-release-cpe:
          user error (ReadContentBS: Could not find etc/system-release-cpe in /tmp/fossa-container-registry-tmp-<REDACTED>/image.tar)

      Traceback:
        - Parsing file 'etc/system-release-cpe'
        - Retrieving Os Information
        - Analyzing via registry

    Error

      Error reading file bin/busybox:
          user error (ReadContentBS: Could not find bin/busybox in /tmp/fossa-container-registry-tmp-<REDACTED>/image.tar)

      Traceback:
        - Retrieving Os Information
        - Analyzing via registry

  >>> Possibly-related warnings

    Warning

      Could not find: ***.dkr.ecr.us-west-2.amazonaws.com/<REDACTED>/<REDACTED>:latest in local repository.
      Perform: docker pull ***.dkr.ecr.us-west-2.amazonaws.com/<REDACTED>/<REDACTED>:latest, prior to running fossa.
      >>> Relevant errors

        Error

          Could not locate tarball source at filepath: /home/runner/work/<REDACTED>/<REDACTED>/***.dkr.ecr.us-west-2.amazonaws.com/<REDACTED>/<REDACTED>:latest

          Traceback:
            (none)

        Error

          Error in $: key "Size" not found

          Traceback:
            (none)

        Error

          Command execution failed: 
              command: Command {cmdName = "podman", cmdArgs = ["image","inspect","***.dkr.ecr.us-west-2.amazonaws.com/<REDACTED>/<REDACTED>:latest"], cmdAllowErr = Never}
              dir: /home/runner/work/<REDACTED>/<REDACTED>/
              exit: ExitFailure 1[25](https://github.com/<REDACTED>/<REDACTED>/actions/runs/<REDACTED>/jobs/<REDACTED>#step:8:26)
              stdout: 
                []

              stderr: 
                Error: error inspecting object: ***.dkr.ecr.us-west-2.amazonaws.com/<REDACTED>/<REDACTED>:latest: image not known

          If you believe this to be a defect, please report a bug to FOSSA support at https://support.fossa.com/

          Traceback:
            - Running command 'podman'
            - Running command 'podman'
@meghfossa meghfossa mentioned this issue Nov 8, 2022
Merged
4 tasks
@meghfossa
Copy link
Contributor

Hi - I've patched this with https://github.com/fossas/fossa-cli/releases/tag/v3.6.2; please let us know if you continue to see this issue.

@FraBle
Copy link
Author

FraBle commented Nov 11, 2022

Hi @meghfossa v3.6.2 solved the original error, but now I see

Error

      The FOSSA endpoint reported an error:

          Container image did not have any artifacts.

      Error UUID from API:

          1daf7b71-ecfa-45f8-ab45-0485afed2231

      If you believe this to be a defect, please report a bug to FOSSA support at https://support.fossa.com/

Though the image does have content:

Screen Shot 2022-11-10 at 4 56 01 PM

@jssblck
Copy link
Member

jssblck commented Nov 15, 2022

Hey @FraBle!

So the root cause of the error here is that we didn't find any dependencies in the image.

To clarify: is the issue here that you're expecting to see dependencies, or that you're expecting "no dependencies" to be a valid case on which FOSSA should not error?

We've ticketed the latter regardless as we think that should be a supported case, but I just want to make sure whether that's the issue from your perspective as well!

@fals fals mentioned this issue May 3, 2023
Merged
@saumas saumas mentioned this issue Sep 29, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@FraBle @jssblck @meghfossa